In this blog post, we will show you how you can easily create a clone of Instagram using Stream Feeds and Flutter..

https://levelup.gitconnected.com/coding-an-instagram-clone-with-flutter-and-feeds-50e3d9a7506e

Assessing Security and Privacy Controls in Information Systems and Organizations from NIST (Jan, 2022)

https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53Ar5.pdf

https://www.praetorian.com/blog/spring-core-jdk9-rce/

PoC (Chinese):

https://github.com/mcdulltii/SpringShell_0-day

CVE-2022-0778

The discovered vulnerability triggers an infinite loop in the function BN_mod_sqrt() of OpenSSL while parsing an elliptic curve key. This means that a maliciously crafted X.509 certificate can DoS any unpatched server.

PoC

https://github.com/drago-96/CVE-2022-0778

Ransomware Deploys Novel IPfuscation Technique To Avoid Detection

https://www.sentinelone.com/blog/hive-ransomware-deploys-novel-ipfuscation-technique/

Build simple GUI apps with Python

https://pysimplegui.readthedocs.io/en/latest/

BLD DNS: What's new and useful added in the project ecosystem / Что нового и полезного появилось в экосистеме проекта
 
~~~RU
Экосистема постоянно обновляется, допиливается, усовершенствуется, сам проект обрастает дополнительными инструментами (pat 1), сегодня хочу представить еще ряд тулз, которые могут быть полезны и вам:
- Blinker - асинхронно пингует сервера, резольвит IP адреса, проверяет скорость ответа (в будущем планируется развить до автоматических уведомлений, например в телеграм)
- BLD-Server - конфигурируемый апдейтер BLD серверов (как правило используется для вспомогательных downstream cерверов), качает указанные в конфиге листы, вычищает их от комментов и тп, объединяет, сортирует и публикует, как итог - один лист для каждой категории, меньше размера, меньше файлов)
- Simple Log Color - NPM пакет. Раскрашиватель аутпут лога в консоль
- Fix Appstream - Фиксит ошибку CentOS 8 (Error: Failed to download metadata for repo 'appstream’). Ошибка блокирует нормальный апедйт серверов.
- Fix Locales - Фиксит ошибку баш консоли в Debian в отношении локали (LCALL: cannot change locale (enUS.UTF-8)
- Apt Automatic - Настраивает автоапдейтинг Debian при помощи unattended-upgrades
- Install Node Exporter - Ставит последнию версию экспортера в Debian

~~~EN
BLD DNS ecosystem is constantly updated, completed, improved, the project itself is overgrown with additional tools (pat 1), today I want to present a few number of tools that may be useful to you:
- Blinker - asynchronously pings servers, resolves IP addresses, checks response speed (in the future it is planned to develop to automatic notifications, for example, in telegrams)
- BLD-Server - configurable BLD server updater (usually used for auxiliary downstream servers), downloads the lists specified in the config, cleans them from comments, etc., merges, sorts and publishes, as a result - one sheet for each category, smaller size, fewer files)
- Simple Log Color - NPM package. Colorizer output log to console
- Fix Appstream - Fixes CentOS 8 error (Error: Failed to download metadata for repo 'appstream'). Error blocking normal server update.
- Fix Locales - Fixes bash console error in Debian (LCALL: cannot change locale (enUS.UTF-8)
- Apt Automatic - Configures Debian autoupgrade with unattended-upgrades
- Install Node Exporter - Install latest Node Exporter in to Debian

Colorize output console.log colors in Node.js

Few time ago I created NPM package, named as - SIMPLE LOG COLOR this package can easy set color to text in to Node console.log().

https://sys-adm.in/en/169-coding-en/975-colorize-output-console-log-colors-in-node-js.html

RU > Красим аутпуты в разные цвета в Node console.log при помощи Simple Log Color

https://sys-adm.in/170-coding/974-krasim-outputy-v-raznye-tsveta-v-node-console-log-pri-pomoshchi-simple-log-color.html

A Syscall Journey in the Windows Kernel

https://alice.climent-pommeret.red/posts/a-syscall-journey-in-the-windows-kernel/

How to run shellcode with IIS - SOAP

This page describes how to run shellcode from a webshell with a .soap extension. Sometimes web applications use upload blacklists and forget about this extension type.

https://red.0xbad53c.com/red-team-operations/initial-access/webshells/iis-soap

/ Deep Dive Analysis – Borat RAT

Remote Access Trojan Capable Of Conducting Ransomware & DDOS Activities

https://blog.cyble.com/2022/03/31/deep-dive-analysis-borat-rat/

/ Malware Specifically Targeting AWS Lambda

https://www.cadosecurity.com/cado-discovers-denonia-the-first-malware-specifically-targeting-lambda/

P.S. Malware domains already blocked in BLD DNS https://lab.sys-adm.in

Tampering With ForcePoint One DLP EndPoint

ForcePoint One DLP EndPoint lacks tamper protection allowing attackers to disable the product, raise privileges and establish persistence on the machine…

Steb by step guide:

https://mrd0x.com/tampering-with-forcepoint-dlp/

Unmanaged Code Execution With .net Dynamic Pinvoke

In this post, .NET loosely refers to modern versions of the .NET Framework (4+). Other versions of .NET runtimes (e.g. Core) may be relevant.

DInvoke is an API for dynamically calling the Windows API, using syscalls, and evading endpoint security controls through powerful primitives and other advanced features such as module overloading and manual mapping.

https://bohops.com/2022/04/02/unmanaged-code-execution-with-net-dynamic-pinvoke/

/ How to write an Ansible plugin to create inventory files

Nmap scanner plugin:

https://www.redhat.com/sysadmin/ansible-plugin-inventory-files